With sendmail, self-signed certificates trigger a warning like:
| Oct 2 13:02:07 hostname sm-mta[24652]: STARTTLS=client, relay=host.example., version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256
There is a logcheck rule for this case (which can be safely ignored),
however it states:
| ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ (sendmail|sm-(mta|msp|que))\[[0-9]+\]: STARTTLS=(server|client), .* verify=(OK|NO)
This should be changed into:
| ^\w{3} [ :0-9]{11} [._[:alnum:]-]+ (sendmail|sm-(mta|msp|que))\[[0-9]+\]: STARTTLS=(server|client), .* verify=(OK|NO|FAIL)